Vulnerability

Amazon Kindle RCE Attack Starts with an Email

The “KindleDrip” attack would have allowed attackers to siphon money from unsuspecting victims. Three vulnerabilities in the Amazon Kindle e-reader would have allowed a remote...

Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks

Netscout researchers identify more than 14,000 existing servers that can be abused by ‘the general attack population’ to flood organizations’ networks with traffic. Cybercriminals can...

SQL Server Malware Tied to Iranian Software Firm, Researchers Allege

Researchers have traced the origins of a campaign – infecting SQL servers to mine cryptocurrency – back to an Iranian software firm. Researchers have made...

Cloud Security

Hackers hijacked cloud accounts of high-tech and aviation firms, hid in systems for years

A recently published Fox-IT report details the cyber espionage activities of a sophisticated hacking group targeting the aviation and high-tech industries. (sebastien lebrigand from crépy...

Last-minute Trump order adds new security regulation to cloud providers

An eleventh-hour executive order from then-president Donald Trump will require infrastructure-as-a-service providers to log the identity of foreign clients. Though Trump has exited the White...

Reliance on cloud, APIs create confusion and introduce risk into software development

Businesses are clamoring for more structure, processes and tools to secure their software development as they increasingly move to host applications in the cloud and...

CISA says multiple attacks on cloud services bypassed multifactor authentication

The Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday said it discovered several recent successful cyberattacks against the cloud services of multiple organizations, offering guidance...

Early-stage cybersecurity investment flowing, despite pandemic

Attendees listen as the Startup Battlefield Competition takes place at Disrupt Berlin 2019. In the venture world, cybersecurity dealmaking remained resilient in 2020, despite the...

JumpCloud land $100 million in funding, as secure remote access market continues surge

The secure identity and access management market continues to hum along, as JumpCloud closed its Series E funding round with $100 million, including an additional...